AGL 38.21 Decreased By ▼ -0.01 (-0.03%)
AIRLINK 135.71 Increased By ▲ 6.74 (5.23%)
BOP 8.78 Increased By ▲ 0.93 (11.85%)
CNERGY 4.74 Increased By ▲ 0.08 (1.72%)
DCL 8.65 Increased By ▲ 0.33 (3.97%)
DFML 39.42 Increased By ▲ 0.48 (1.23%)
DGKC 85.35 Increased By ▲ 3.41 (4.16%)
FCCL 35.10 Increased By ▲ 1.68 (5.03%)
FFBL 75.90 Increased By ▲ 0.19 (0.25%)
FFL 12.85 Increased By ▲ 0.03 (0.23%)
HUBC 110.68 Increased By ▲ 0.32 (0.29%)
HUMNL 14.00 Decreased By ▼ -0.01 (-0.07%)
KEL 5.41 Increased By ▲ 0.26 (5.05%)
KOSM 7.76 Increased By ▲ 0.09 (1.17%)
MLCF 41.70 Increased By ▲ 1.90 (4.77%)
NBP 71.05 Decreased By ▼ -1.27 (-1.76%)
OGDC 190.50 Increased By ▲ 2.21 (1.17%)
PAEL 26.40 Increased By ▲ 0.77 (3%)
PIBTL 7.42 Increased By ▲ 0.05 (0.68%)
PPL 157.70 Increased By ▲ 5.03 (3.29%)
PRL 26.11 Increased By ▲ 0.72 (2.84%)
PTC 18.90 Increased By ▲ 1.20 (6.78%)
SEARL 82.44 Increased By ▲ 0.02 (0.02%)
TELE 7.85 Increased By ▲ 0.26 (3.43%)
TOMCL 34.15 Increased By ▲ 1.58 (4.85%)
TPLP 8.40 Decreased By ▼ -0.02 (-0.24%)
TREET 17.13 Increased By ▲ 0.35 (2.09%)
TRG 57.80 Increased By ▲ 1.76 (3.14%)
UNITY 29.24 Increased By ▲ 0.46 (1.6%)
WTL 1.35 No Change ▼ 0.00 (0%)
BR100 10,710 Increased By 51.9 (0.49%)
BR30 31,943 Increased By 612.2 (1.95%)
KSE100 99,677 Increased By 408.2 (0.41%)
KSE30 31,041 Increased By 8.6 (0.03%)

Symantec Corp, a digital security company, says it has identified a sustained cyber spying campaign, likely state-sponsored, against Indian and Pakistani entities involved in regional security issues. In a threat intelligence report that was sent to clients in July, Symantec said the online espionage effort dated back to October 2016.
The campaign appeared to be the work of several groups, but tactics and techniques used suggest that the groups were operating with "similar goals or under the same sponsor", probably a nation state, according to the threat report, which was reviewed by Reuters. It did not name a state. The detailed report on the cyber spying comes at a time of heightened tensions in the region.
India's military has raised operational readiness along its border with China following a face-off in Bhutan near their disputed frontier, while Indo-Pakistan tensions are also simmering over the disputed Kashmir region. A spokesman for Symantec said the company does not comment publicly on the malware analysis, investigations and incident response services it provides clients. Symantec did not identify the likely sponsor of the attack. But it said that governments and militaries with operations in South Asia and interests in regional security issues would likely be at risk from the malware. The malware utilizes the so-called "Ehdoor" backdoor to access files on computers.
"There was a similar campaign that targeted Qatar using programs called Spynote and Revokery," said a security expert, who requested anonymity. "They were backdoors just like Ehdoor, which is a targeted effort for South Asia." To install the malware, Symantec found, the attackers used decoy documents related to security issues in South Asia. The documents included reports from Reuters, Zee News, and the Hindu, and were related to military issues, Kashmir, and an Indian secessionist movement.
The malware allows spies to upload and download files, carry out processes, log keystrokes, identify the target's location, steal personal data, and take screenshots, Symantec said, adding that the malware was also being used to target Android devices. In response to frequent cyber-security incidents, India in February established a center to help companies and individuals detect and remove malware. The center is operated by the Indian Computer Emergency Response Team (CERT-In).

Comments

Comments are closed.